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The Examioer rqjects claims 1-36 under 35 U.S.Q§ 102(b) as being anticipated by U.S. 
Patent 5,671^79 to Elgamal and claims 12 and 25 under 35 U.S.C.§103(a) as being unpatentable 
over Elgamal as applied to claims 10 and 15 above and further in view of U.S» Patent 5,729,594 to 
KlingDian. 

Applicant respectfully traverses the Examiner's rejections. Elgamal and Klingman faU to 
teach or suggest, individually and coUectivefy, at least the following italicized features of the pending 
independent claims: 

1. A method of communicating data between a first computing device 
and a second conq)uting device, the method coii5)rising the steps o£ 

commimicaiing a first datum of amessagefrvmthe^^ 
the second computing device with encryption of the first datum; and 

communicating a second datum of the message from the first computing 
device to the second comptding device mihout encryption of the second datum- 

1 5. A data comnmnication system comprising: 

a first confuting device that commxinicates information to a second 
conqxuting device responsive to a request from the second conq)uting device to the 
first conq)uting device, the information including a procedure that causes the second 
computing device to select a first datum of a message for communication of the first 
datum from the second computing device to the first computing device with 
encryption and select a second datum of the message for convnunication of the 
second datum from the second computing device to the first computing device 
without encryption; and 

the first computing device receiving the first datum with encryption and the 
second datum without encryption and decrypting the first datum. 

36. A method of communication data between a first computing device 
and a second confuting device, the method con5)rising: 

(b) receiving a message from the user, wherein the message conq)rises at least 
a first and second datum ii^jut by the user into the at least first and second input 
fields, respectively, of the display, wherein the first datum is confidential to the user 
and the second datum is non-confidential to the user; 
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(c) identifying that the first datum is confidential and the second datum is 
non-cor\fidential: 

(d) the first computing device communicating, to the second computing 
device, the first datum with encryption; and 

(e) the first computing device communicating, to the second computing 
device, the second datum without encryption, wherein steps (d) and (e) occur at least 
substantially simultaneously. 

The present invention is directed to an encryption module thai encrypts only part of a 
message sent by one node to another node. By way of example, in one configuration of the present 
invention a graphical display is presented to a user requesting the user to input information into a 
number of input fields. Some of the fields require the entry of confidential information while others 
do not. The fields are identified accordingly. When xiser requests transnaission of the displayed 
information to another node, the module enocypts only the confidential fields and not the non- 
confidential fields. The use of encryption on only part of the transmission can represent suhstantial 
savings in con^utational resources both at the trananitting and receiving nodes. 

Elgamai 

Elga mal , the primary reference, is directed to a courier electronic payment system that 
provides customers, merchants, and banks with a secure mechanism for using a public network as 
a platform for credit card payment services. The system governs the relationship between a 
customer, merchant, and acquirer gateway to perform cH^dit card purchases over such networks as 
the Internet. The system uses a secure cormection to $in5)lify the problem of Internet-based financial 
trai^actions in accordance with an electronic payment protocol that secures credit card payments and 
certifies infrastructure that is required to enable all of the parties to partic5)ate in the electronic 
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commerce, as well as to provide the accessary formats and interfaces between the different modules 
and systems. 

The Examiner states that Elgamal teaches sending both enaypted (PI value) and unencrypted 

(purchase order and payment instruction messages) information from a merchant to a customer. This 

conclusion conflicts with the clear teachings of ElgamaL At col 4, lines 33-37, ElganwJ states that: 

All channel communications between any two nodes in the system should be 
encrypted. This guards against any network snooping and does not give any 
infbrmation to possible attackers. 

At coL 4, lines 52-57, Elgamal fiiither states that: 

Integrity is maintained at all times using a keyed message digest computation. This 
should be part of the channel security mechanism. An extra layer of integrity is 
added to the message level using a hash of each message to avoid early termination 
type attacks, and to make sure that the messages arrive at the recipient unaltered. 

Regarding the specific text identified by the Examiner, Elgamal specifically states that the '1*1 value 

should be encrypted so that the Merchant*s server, e,g. on the Internet, does not have any clear credit 

card numb^ that can be accessed remotely** (coL 9, lines 30-33) and 'Itjhe PI is preferably sent 

encrypted to the Acquirer u$mg the Acquirer's public key** (col. 10, Unes 20-21). As admitted by 

the Examiner, Elgamal does not specifically state that the purchase order and payment instruction 

messages are not encrypted. 

Even if the Examiner's reading of Elgamal is correct, Elgamal refers to different messages 

sent at rf^rteg- times. It does not refer to the encryptk)nofonly parts of the same message. In the 

present invention, the encrypted and unencrypted input fields are requested to be transmitted by the 

user simultaneously or substantially simultaneously. Within the packeted stream derived by the 
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present invention from the message, some packet payloads are encrypted while others are not and/or 

some portions of a packet payload are encrypted while other portions are not. 

In the final Office Action, the Examiner counters these arguments by referencing Elgamal, 

coL 9, lines 30-33, and 61-67, and stating that Elgamal states that PI information is encrypted and 

implies that other fields, such as the order and paym^it instructions, are not encrypted^ This 

conchision conflicts with other passages in Elgamal, such as col. 4, lines 33-37 and 52-57 and coL 

10, lines 37-40, For exan^le, Elgamal does state that the PI value maybe sent "in the clear" (col. 

10, lines 21-23) but later states that: 

It may be necessary to send the PI without encryption in case of a merchant that 
pwfbrms the capture process independently. This is reflected in a capability field in 
the merchant certificate that instructs the acquirer software to send the credit card 

infonnatbn badk to the merchant. As discussed abo^e, the data on the channel^ 

encrypted by the secure transport, and the Merchant is the only entity that may 
receive the clear PI data from the acquirer, 

(CoL 10, lines 37-40 (enqjhasis supplied),) Evot more clearly, Elgamal states: 

The PI is preferably sent encrypted to the Acquirer using the Acquirer's public key. 
In some cases, due to certain Merchant - Acquirer relationsh^s, the PI may be sent 
in the clear. It is always recommended to encrypt the PI message using the following 
digital envetope construction. 

E(Slip) = PKApES key K}, K(Slip) 
The final message sent is ibrnmtted as follows: 

PI = SIGNA(E(S1^)) 
where the SIGN operation is defined as above. 

(CoL 10, lines 20-32 (en5)hasis supplied.) These passages state that all channel communications are 

encrypted using a keyed message digest computation to avoid early termination-type attacks, 

Although Elgamal states that the PI information may be sent '*in the dear" (without some level of 

encryption), it also states that all data on a channel is encrypted by the secure transport layer and 
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therefore '*thc Merchant is the only entity that may receive the clear PI data from the acquirer." (CoL 
10, lines 39-40.) The statement of Elgaraal refers to a particular type of encryption being absent, 
namely encryption xising the acqxurer's public key, and does not refer to any and every type of 
encryption being absent. The public key is used as discussed at col, 10, lines 25-32, so that the 
^Merchant's server, e.g., on the Internet, does not have any dear credit card nmnbers that can be 
accessed remotely*. (CoL 9, hnes 29-32.) 

iClinpirtftn 

Klingman is directed to a remote communication system for fecilitating secure electronic 
purchases of goods in on-line, wherein a suitable local user input device in association with a data 
transmission system, couples the user ii^ut into a packet network system for communication to a 
remote receiver/decoder apparatus to try a potentialty desirable product. Upon selection of the 
desired product by the user, a telecom network link is used to communicate a telephone number 
associated with the desired product from the user to the remote receiver to allow the user to buy the 
desired product. The telecom network used to link the user ii^ut device to the remote apparatus may 
also include a 900 number billing system for assessing and collecting fees for use of the systOTu 

Klingman fails to overcome the deficiwicics of Elgama], Klingman, unlike Elganial and the 
present invention, sends confidential information over a circuit-switched telecommunications 
n^work, such as the PSTN, and non-confidential information over a packet-switched networi^, such 
as the Int^net* "Consequently, there is no need for any encryption procedures or digital signatures, 
although encryption may be used if so desired." (CoL 13, lines 45-52.) 
Accordingly, the rejected claims are allowable over Klingman. 
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The dependent claims provide further reasons for allowance. 

By way of example, dependent claim 2 requires the step of communicating the first datum 
of the message with encryption of the first datum and the step of communicating the second datum 
of the message without encryption of the second datum to include the step of comnmnicaiing the first 
datum with encryption and the second datum without encryption in a same packet that conq)rises the 
message and further includes the steps of providing a display to a user^ the display conq^rising at 
least first and second input fields for input fiom the user and at least a first presentation field 
associated with the at least first and second input fields; and receiving the message from the user» 
wherein the message corresponds to the display and wherein first datum refers to the first input field 
and the second datum to the second input field of the display, See also dependent Claim 16. 

Dependent claim 3 requires the step of communicating the first datum of the message with 
encryption of the first datum and the step of communicating the second datum of the message 
without ^cryption of the second datimi to incixide the steps of communicating the iirsl datum with 
encryption in a first packet of the message and communicating the second datiun without encryption 
in a second packet of the message different from the first packet of the message and the fiirther steps 
of providing a display to a uiser, the display con^rising at least first and second iiq)ut fields for iiqmt 
fi'om the user and at least a first presentation field associated with the at least first and second iiq)ut 
fields and receiving the message from the user» wherein the message corresponds to the display and 
wherein the first datum refers to the first input field and the second datum to the second input field 
of the display. See also dependent Claim 17, 
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Dq)eadeiit claim 4 requires the step of communicating the first datum of the message with 
encryption of the first datum and the step of communicating the second d"him of the message 
without encryption of the second datum comprise the step of employing a same path between the 
first confuting device and the second con:q)uting device to communicate the first datum with 
encryption and the second datum without encryption. See also dependent Claim 18. 

Dq^endent claim 5 requires the step of employing the same path to communicate the first 
datum with encryption and the second datum without encryption to inchide the step of en:q)bying 
a TCP/IP passage between the first conq)uting device and the second computing device to 
communicate the first datum with encryption and the second datum without encryption. See also 
dependent Claim 19. 

Depwident claim 6 requires the step of communicating the first datum of the message with 
encryption of the first datum to include the step of en^jtoying a key to encrypt the first datum of the 
message fijr communication of the first dattim fi'om the first conqjxiting device to the second 
computing device with encryption of the first datum. See also dependent Claims 7-9 and 20-22. 

Dependent claim 10 requires the step of communicating a procedure from the second 
con5)uting device to the first confuting device, and wherein the step of communicating the first 
datum of the message from the first coniputing device to the second confuting device with 
encryption of the first datum conq)rises the step of en^loying the procedure to racrypt the first 
datum of the message for communication of the first datum fit)m the first computing device to the 
second computing device. See also dependent Claims 1 1-14 and 23-27. 

Dependent claims 30-35 are also allowable over the cited art for reasons noted above. 
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Based upon the foregoing^ Applicant believes that all pending claims are in condition for 
allowance and such disposition is respectfiilly requested* In the event that a telephone conv^sation 
would further prosecution and/or expedite allowance, the Exaniiner is invited to contact the 
undersigned. 

Respectfully submitted, 
SHERIDAN ROSS P.C. 




Dale: Mr.N/ 6, ^4 



Douglas W. Swartz 
Registration No. 37,739 
1560 Broadway, Suite 1200 
Denver, Colorado 80202-5141 
(303) 863-9700 



-9- 

J:\436fiV4i\Aiitimil.&BifiOa2.wpd 



PAGE1(l/10'RCVDATS/7/20l)412:27:OOPM[Eastem Daylight rime]'SVR:USPTO{^^^^ 



